This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/ceHX5930Yw-uMYDr-pQpJhg5-v8.roa File: ceHX5930Yw-uMYDr-pQpJhg5-v8.roa (raw, json) Hash identifier: Ca28wHc4zXYTAAEZqjDqcQtD0iK+HxJ4xEb2WB6NA28= Subject key identifier: 71:E1:D7:E7:DD:F4:63:0F:AE:31:80:EB:FA:94:29:26:18:39:FA:FF Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819 Certificate serial: 019B7A5B0B377C29171AFF6FD43C94197ACC Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/ceHX5930Yw-uMYDr-pQpJhg5-v8.roa Signing time: Thu 01 Jan 2026 16:19:05 +0000 ROA not before: Thu 01 Jan 2026 16:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49363 IP address blocks: 185.13.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.mft rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:0b:37:7c:29:17:1a:ff:6f:d4:3c:94:19:7a:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819 Validity Not Before: Jan 1 16:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71e1d7e7ddf4630fae3180ebfa9429261839faff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a7:ed:4d:37:ce:e9:96:1a:25:2b:82:58:4b: 14:0e:54:bb:1e:62:fe:6d:2e:9a:14:36:ca:97:f7: d8:dc:fc:87:2a:9f:1d:9f:2d:ed:24:62:b2:7c:38: 2f:64:a0:1d:cf:02:3f:21:14:e2:e7:7c:3d:24:29: 26:03:d6:1c:90:9a:a4:d7:5b:a2:cc:c9:32:c9:d8: 6a:f2:55:ca:08:21:6e:c1:13:5c:29:1e:aa:42:61: 9f:a5:2e:2f:5a:06:09:11:60:57:31:f4:dd:6a:c7: 1e:27:86:17:ab:72:f6:21:a0:1f:f8:a0:e5:9f:80: d2:68:cf:be:9e:f3:93:e8:dc:4b:30:a1:1b:96:c7: 4f:b3:87:da:9d:d4:3c:ff:6b:d4:21:10:af:ce:26: 0a:eb:a9:3c:69:e9:02:d8:a1:34:e7:e0:0c:59:e1: b5:0b:e4:d5:5e:cc:08:50:b7:4e:32:79:60:91:b9: 78:f0:95:0d:18:b6:5d:e0:89:f0:fb:6d:64:69:3e: 46:6c:9f:80:5f:87:62:be:cb:2a:a4:53:87:c8:b3: 36:5a:8a:4d:23:17:f3:b1:0d:9f:21:b0:a1:f0:9e: 01:b0:84:b7:1d:aa:71:dd:fb:55:69:a8:88:1c:b9: 95:6f:53:50:74:a7:bb:6e:84:13:92:3e:52:c8:3b: 1f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E1:D7:E7:DD:F4:63:0F:AE:31:80:EB:FA:94:29:26:18:39:FA:FF X509v3 Authority Key Identifier: keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/ceHX5930Yw-uMYDr-pQpJhg5-v8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.13.196.0/22 Signature Algorithm: sha256WithRSAEncryption 09:8d:55:5d:a8:d7:f3:7b:ee:32:6e:b5:f8:b1:dd:fb:6d:88: 8a:aa:13:38:b5:4e:d7:b3:ea:68:19:09:84:db:24:4e:1e:c3: f2:9a:29:a9:70:31:0c:58:33:14:ed:55:6b:df:e6:c4:6e:93: cb:6c:23:6f:86:82:55:b5:ad:ff:da:ca:dc:d2:7a:26:eb:8e: 8f:4d:3a:e9:08:53:2b:d2:41:ce:72:bb:97:4e:88:85:bc:cc: 10:0c:a1:ca:60:57:5e:5f:d7:a7:28:9d:8f:d9:b0:0d:70:68: 48:72:f6:4b:40:88:a5:43:4b:a9:57:42:0e:f6:26:c4:0b:85: aa:51:24:9d:d9:03:e0:ea:52:74:5a:8a:7b:26:6c:50:5e:ec: 45:c7:28:17:ad:1d:4d:e3:29:aa:ef:aa:8a:0e:f5:fa:36:c8: cb:97:ff:52:c8:8f:03:a5:2d:f7:6f:22:09:49:4f:1b:60:ba: 5d:46:68:87:35:f7:b9:32:f7:6f:bf:3c:37:74:44:99:16:c1: 1d:80:26:f7:44:e3:a7:3b:e5:46:6f:3e:b3:b7:47:32:27:46: 22:37:38:9f:17:c7:b4:bc:66:f7:61:a7:41:25:a1:30:8c:2f: ac:53:5b:4f:bf:3b:d2:2c:ea:59:b1:d1:8d:bd:f4:ee:1f:42: 31:1e:4f:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wws3fCkXGv9v1DyUGXrMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjOTBjMzU2ZTI4NjRmNDM4OTQ4NTc0NDM1NTVkOGI1YzAz NTI4MTkwHhcNMjYwMTAxMTYxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MWUxZDdlN2RkZjQ2MzBmYWUzMTgwZWJmYTk0MjkyNjE4MzlmYWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaftTTfO6ZYaJSuCWEsUDlS7HmL+ bS6aFDbKl/fY3PyHKp8dny3tJGKyfDgvZKAdzwI/IRTi53w9JCkmA9YckJqk11ui zMkyydhq8lXKCCFuwRNcKR6qQmGfpS4vWgYJEWBXMfTdasceJ4YXq3L2IaAf+KDl n4DSaM++nvOT6NxLMKEblsdPs4fandQ8/2vUIRCvziYK66k8aekC2KE05+AMWeG1 C+TVXswIULdOMnlgkbl48JUNGLZd4Inw+21kaT5GbJ+AX4divssqpFOHyLM2WopN IxfzsQ2fIbCh8J4BsIS3Hapx3ftVaaiIHLmVb1NQdKe7boQTkj5SyDsfywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHHh1+fd9GMPrjGA6/qUKSYYOfr/MB8GA1UdIwQY MBaAFAyQw1bihk9DiUhXRDVV2LXANSgZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDct ZTM3OTlhZGU5ZGZlLzEvY2VIWDU5MzBZdy11TVlEci1wUXBKaGc1LXY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hYzVhNTYtMTYzYS00OTdhLTk1NDctZTM3OTlhZGU5ZGZl LzEvREpERFZ1S0dUME9KU0ZkRU5WWFl0Y0ExS0JrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQ3EMA0G CSqGSIb3DQEBCwUAA4IBAQAJjVVdqNfze+4ybrX4sd37bYiKqhM4tU7Xs+poGQmE 2yROHsPymimpcDEMWDMU7VVr3+bEbpPLbCNvhoJVta3/2src0nom646PTTrpCFMr 0kHOcruXToiFvMwQDKHKYFdeX9enKJ2P2bANcGhIcvZLQIilQ0upV0IO9ibEC4Wq USSd2QPg6lJ0Wop7JmxQXuxFxygXrR1N4ymq76qKDvX6NsjLl/9SyI8DpS33byIJ SU8bYLpdRmiHNfe5Mvdvvzw3dESZFsEdgCb3ROOnO+VGbz6zt0cyJ0YiNzifF8e0 vGb3YadBJaEwjC+sU1tPvzvSLOpZsdGNvfTuH0IxHk+x -----END CERTIFICATE-----Generated at Sun Jan 25 23:03:36 2026 by rpki-client